Title :
A Policy-Based Architecture for Web Services Security Processing
Author :
Hao Zeng ; Dianfu Ma ; Zhuqing Li ; Yongwang Zhao
Author_Institution :
Nat. Lab. of Software Dev. Environ., Beihang Univ., Beijing, China
Abstract :
With the development of the Internet, Web Services technology has gradually become the development direction of the e-business, e-government and other fields, and the corresponding security mechanism has received unprecedented attention, while how to design an integrated architecture to enhance web services security remains a problem very difficult to tackle with, and there are no good solutions to support individualized security requirements. As a result of our study we present in this paper a policy-based architecture termed PBA4WSSP for web services security processing. In PBA4WSSP, the processes of all security problems are based on security policy in service stage to enable system security and flexibility. Moreover, this architecture provides the five security services including as integrity, confidentiality, non-repudiation, authentication and authorization. In PBA4WSSP, a web service security module have been designed and implemented.
Keywords :
Web services; authorisation; data integrity; Internet; PBA4WSSP; Web service security module; Web services security processing; Web services technology; authentication; authorization; confidentiality; e-business; e-government; integrity; nonrepudiation; policy-based architecture; security policy; security requirements; system security; Authentication; Authorization; Computer architecture; Protocols; Service oriented architecture; PBA4WSSP; Security; Security Policy; Web Services;
Conference_Titel :
e-Business Engineering (ICEBE), 2012 IEEE Ninth International Conference on
Conference_Location :
Hangzhou
Print_ISBN :
978-1-4673-2601-8
DOI :
10.1109/ICEBE.2012.35